Maki DePalo

About Maki DePalo

Maki DePalo is a partner with Alston & Bird’s Privacy, Cyber & Data Strategy Team. She devotes her practice to clients' initiatives in technology and corporate transactions encompassing intellectual property licensing, strategic outsourcing, Internet-based marketing and advertising, data privacy and security, governance and compliance.

[Read Bio]

Arkansas Enacts Children and Teens’ Online Privacy Protection Act

April 25, 2025 By Maki DePalo and Hyun Jai Oh

On April 21, 2025, Arkansas Governor Sarah Huckabee Sanders signed into law the Arkansas Children and Teens’ Online Privacy Protection Act (Act), which will become effective on July 1, 2026. It draws inspiration from the federal Children and Teens’ Online Privacy Protection Act (COPPA 2.0) and provides stronger privacy protections for Arkansas residents under thirteen […]

FTC Publishes Amendments to COPPA Rule

April 22, 2025 By Maki DePalo and Hyun Jai Oh

On April 22, 2025, the Federal Trade Commission (FTC) published the finalized amendments (Amendments) to the Children’s Online Privacy Protection Rule (COPPA Rule) that would impose additional restrictions on website and online service operators that collect personal information from children under the age of thirteen. The Amendments will become effective on June 23, 2025. Operators […]

Key Takeaways from CPPA’s Recent Settlement with an Automotive Manufacturer for Alleged CCPA Violations

March 19, 2025 By Maki DePalo and Hyun Jai Oh

On March 12, 2025, the California Privacy Protection Agency (CPPA) published its decision approving a Stipulated Final Order (Order) against a major automotive manufacturer (company) for violations of the California Consumer Privacy Act (CCPA). The Order requires the company to pay a $632,500 fine and implement several changes to its data handling practices. These changes […]

Court Enjoins Enforcement of California Age-Appropriate Design Code Act

March 17, 2025 By Maki DePalo and Hyun Jai Oh

On March 13, 2025, the U.S. District Court for the Northern District of California granted a preliminary injunction preventing the California Attorney General (AG) from enforcing the California Age-Appropriate Design Code Act (CAADCA). The decision followed the California AG’s agreement to delay the enforcement of CAADCA until April 5, 2025. As of now, the California […]

New York AG Announces $650,000 Settlement with Social Media App Developer for Students’ Privacy and Safety Concerns

March 12, 2025 By Alex Brown, Maki DePalo and Hyun Jai Oh

On March 7, 2025, the Office of the New York State Attorney General (NY AG) published an Assurance of Discontinuance (Assurance) settling claims against Saturn Technologies, Inc. (company), a developer of a social media app for high school students. The NY AG found that the company made unsubstantiated claims about the app’s privacy and safety […]